On 1/23/2013 10:21 AM, Tom Tucker wrote:
>
> Stan,
> Thanks for the response. This does work, however these clients are
> also able to send to domains outside my environment. Let me try to
> clarify my scenario.
>
> Client: With PTR record = Full relay (internal & external domains)
> Client: No PTR record = Relay for internal domains only
>
> Is it possible to configure Postfix to support this type configuration?
>
>
Apparently you want to use the existence of PTR in your local
networks to determine if the client can relay.
If the authorized clients with PTR also have a matching A record so
that postfix logs them eg. "host.example.com", you can use something
like:
# client_relay
example.com OK
# main.cf
1 smtpd_recipient_restrictions =
2 check_client_access hash:/etc/postfix/client_relay
3 reject_unauth_destination
4 permit_mynetworks
... other UCE controls ...
Line 2 grants relay access to clients that have FCrDNS in your
domain "example.com"
Line 3 denies relay access to anyone else
Line 4 allows all clients in $mynetworks to send local mail prior to
your UCE restrictions.
